1b1bdb0b2e30de66ad01da578b313f9dd193bcc298b29a5fdaecf15fbc630c1c

Sharing

Copy URL Twitter E-mail

General

Target

1b1bdb0b2e30de66ad01da578b313f9dd193bcc298b29a5fdaecf15fbc630c1c
Size

524KB
MD5

91658f342b822cd5d1500b82f2b93e30
SHA1

5d5c2cd0724945fc0d968be503cc37abef05af4e
SHA256

1b1bdb0b2e30de66ad01da578b313f9dd193bcc298b29a5fdaecf15fbc630c1c
SHA512

93ea9965847fc9f21b1f54f9a1780d31178b53b2fd05df9ce877f1512c7cdbf18e1d1533d3e30cbd6807e9df106547023fb06d43671d573087a132f4ce606fb2
SSDEEP

12288:GFzo+awKAhZL1ajOYDKp9lvbji/fsbS3cj:GFjasZX9tjVbS3cj

Score

N/A

Malware Config

Signatures

Files

1b1bdb0b2e30de66ad01da578b313f9dd193bcc298b29a5fdaecf15fbc630c1c
.exe windows x86

63ed387f9cb67a6be7fe933e5ed20be0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegCreateKeyExW
CryptAcquireContextW
RegQueryValueW
RegCreateKeyA
CryptSetProviderA
CryptDuplicateHash
RegEnumValueA
CreateServiceA
CryptEncrypt
RegOpenKeyW
CryptDuplicateKey
RegDeleteKeyW
AbortSystemShutdownA
DuplicateTokenEx
InitiateSystemShutdownA
CryptDeriveKey
RegQueryMultipleValuesA
LogonUserA
LookupPrivilegeDisplayNameA
RegCreateKeyW
CryptReleaseContext
RegEnumKeyExA
RegEnumValueW
CryptSetHashParam
CryptGetUserKey
RegSetValueExW
RegSaveKeyA
CryptCreateHash
RegOpenKeyExA

comdlg32

FindTextA
PageSetupDlgW
GetFileTitleA
LoadAlterBitmap
ChooseColorA
PrintDlgA

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
HeapValidate
lstrcpyn
LoadResource
HeapWalk
WinExec
GetFullPathNameA
CreatePipe
SetLocaleInfoA
LocalFlags
lstrcatW
CreateSemaphoreW
SetConsoleScreenBufferSize
LocalFree
GetLocaleInfoA
GetComputerNameW
PeekNamedPipe
GetDiskFreeSpaceExW
OutputDebugStringA
WideCharToMultiByte
FormatMessageW
GetShortPathNameW
FreeResource
FindClose
WaitForMultipleObjectsEx
GetMailslotInfo
GetSystemDirectoryA
EnumTimeFormatsA
FindFirstChangeNotificationW
VirtualQueryEx
HeapLock
GlobalAddAtomW
GetShortPathNameA
FindFirstFileW
DisconnectNamedPipe
GetSystemTime
DebugBreak
GetProfileIntW
WritePrivateProfileSectionW
VirtualLock
GlobalFix
InterlockedExchangeAdd
GetLargestConsoleWindowSize
GetAtomNameA
MoveFileA
FlushFileBuffers
SetFileTime
GetTimeZoneInformation
BeginUpdateResourceW
DeleteCriticalSection
GetDateFormatA
GetUserDefaultLangID
HeapDestroy
GetTempPathA
VirtualFreeEx
TryEnterCriticalSection
MoveFileExA
UpdateResourceA
GetStringTypeW
ReadConsoleInputW
RemoveDirectoryW
GetPrivateProfileSectionA
WriteConsoleInputA
ExpandEnvironmentStringsA
GetTempFileNameA
GetEnvironmentVariableA
SetConsoleWindowInfo
GetFileAttributesW
ReadConsoleOutputAttribute
WriteConsoleW
GetProfileSectionA
CreateProcessA
CreateSemaphoreA
WriteFileEx
DisableThreadLibraryCalls
GetQueuedCompletionStatus
WriteFile
OpenSemaphoreA
OpenMutexW
MulDiv
FreeConsole
SetConsoleCtrlHandler
GetFileTime
GlobalDeleteAtom
LocalReAlloc
GetNamedPipeHandleStateW
Heap32First
GetThreadPriority
OpenFile
GetConsoleTitleW
SetCurrentDirectoryW
GlobalFindAtomW
DeleteFiber
RtlMoveMemory
GetCompressedFileSizeA
CreateEventA
ReadDirectoryChangesW
InitAtomTable
GetPrivateProfileSectionW
Heap32ListNext
GetSystemTimeAdjustment
GetProfileStringA
CopyFileExA
GetDiskFreeSpaceW
Toolhelp32ReadProcessMemory
FreeEnvironmentStringsA
GetEnvironmentStringsA
DeviceIoControl
MoveFileExW
lstrcmpiW
CloseHandle
GlobalUnfix
GetSystemDefaultLCID
BeginUpdateResourceA
FindResourceW
Heap32Next
InitializeCriticalSection
GetStartupInfoW
VirtualUnlock
FreeEnvironmentStringsW
LockFile
LocalSize
OpenWaitableTimerA
ReadFileEx
ReadConsoleOutputCharacterW
ReadFile
EnumDateFormatsExW
GetDateFormatW
GetComputerNameA
GetCurrentDirectoryW
lstrcmp
SetPriorityClass
GetProfileStringW
GlobalUnlock
LoadLibraryExW
SignalObjectAndWait
GetProcessPriorityBoost
MapViewOfFileEx
WriteProcessMemory
FillConsoleOutputAttribute
MultiByteToWideChar
GetCommandLineW
GetFullPathNameW
SetThreadIdealProcessor
GetFileInformationByHandle
EnumResourceTypesW
SetConsoleCP
CreateFileA
ReadConsoleOutputW
GetPrivateProfileIntA
GetStringTypeExW
ReadProcessMemory
CreateNamedPipeA
FileTimeToLocalFileTime
GetPrivateProfileIntW
GetVolumeInformationW
GlobalUnWire
GetTempFileNameW
GetProcessHeap
EnumDateFormatsExA
FreeLibraryAndExitThread
GetThreadPriorityBoost
LocalFileTimeToFileTime
FormatMessageA
lstrlenW
HeapCreate
Heap32ListFirst
SetConsoleOutputCP
AddAtomW
GlobalGetAtomNameA
InterlockedDecrement
GetVolumeInformationA
GetEnvironmentStrings
FindAtomA
EnumResourceNamesA
DeleteAtom
CreateProcessW
SetFilePointer
CreateRemoteThread
SetThreadPriority
EnumSystemLocalesW
SetConsoleMode
OpenMutexA
FlushConsoleInputBuffer
FileTimeToSystemTime
GetStdHandle
SetEnvironmentVariableW
WriteConsoleOutputCharacterW
GetUserDefaultLCID
FoldStringW
EnumSystemCodePagesA
WriteConsoleOutputA
SetLastError
WaitNamedPipeA
GetPrivateProfileSectionNamesW
WaitForSingleObject
GetSystemDirectoryW
GlobalFindAtomA
CreateNamedPipeW
GlobalFree
EnumCalendarInfoExW
GetSystemDefaultLangID
GetLogicalDrives
FindAtomW
GlobalReAlloc
MoveFileW
EraseTape
FindFirstFileA
EscapeCommFunction
CreateFileMappingA
CreateMailslotA
GetWindowsDirectoryA

user32

CreateAcceleratorTableW
DdeReconnect
SetSystemCursor
InflateRect
UnregisterClassW
IsRectEmpty
GetUserObjectInformationA
LoadCursorFromFileW
LoadImageW
GetMenu
CharToOemW
DlgDirListComboBoxA
CreateAcceleratorTableA
DefWindowProcA
GetAsyncKeyState
EnumPropsA
SetCursorPos
IsIconic
DragObject
SendNotifyMessageW
OpenWindowStationA
GetUpdateRect
CreateDialogParamA
SetWindowRgn
SendMessageW
LoadCursorA
wvsprintfA
OpenClipboard
SetActiveWindow
SubtractRect
LoadKeyboardLayoutA
CharUpperBuffA
UnhookWinEvent
GetKeyboardLayoutNameW
MessageBoxW
WinHelpW
GetActiveWindow
SetCursor
DdeNameService
GetDlgItemTextW
GetMonitorInfoW
CharPrevA
GetForegroundWindow
OpenWindowStationW
wsprintfW
DefMDIChildProcW
DdeInitializeA
SetWindowPlacement
CreateDesktopW
CharLowerW
SetRect
GetClientRect
InsertMenuA
IsWindowEnabled
GetSysColorBrush
GetParent
SwitchDesktop
SetWindowsHookW
MonitorFromRect
EnumWindows
CallWindowProcA
GetWindowThreadProcessId
DeleteMenu
GetMenuStringA
CreateDialogIndirectParamW
EnumDisplayMonitors
EnumPropsExW
LoadMenuW
LoadKeyboardLayoutW
InternalGetWindowText
GetMonitorInfoA
CallMsgFilterW
GetUserObjectInformationW
GetClipboardData
GetDialogBaseUnits
SetUserObjectInformationA
OpenDesktopA
WINNLSGetEnableStatus
FrameRect
RegisterWindowMessageW
DlgDirSelectComboBoxExW
RemoveMenu
GetClassLongA
WINNLSEnableIME
IsCharAlphaNumericA
SetMenuItemBitmaps
DestroyCaret
FindWindowA
DestroyAcceleratorTable
CharNextW
EnumWindowStationsW
DdeSetQualityOfService
GetCapture
DeferWindowPos
InsertMenuW
RegisterClassA
GetDCEx
CloseClipboard
ModifyMenuA
FindWindowW
GetMessageExtraInfo
CharLowerBuffW
PostThreadMessageW
UnhookWindowsHook
GetUpdateRgn
InvalidateRect
DrawTextA
DefFrameProcA
GetDoubleClickTime
GetWindowModuleFileNameW
IsCharAlphaA
GetCaretPos
GetPropW
GetWindowLongA
GetUserObjectSecurity
BroadcastSystemMessageW
GetKeyboardState
EnumPropsW
MapDialogRect
DdeInitializeW
IsDlgButtonChecked
SetWindowPos
ChangeMenuA
TileChildWindows
SetDlgItemTextW
AdjustWindowRectEx
BeginPaint
wsprintfA
ValidateRgn
GetWindow
IsDialogMessageA
DefWindowProcW
EnumDisplaySettingsExA
AdjustWindowRect
ChangeMenuW
SetMenuContextHelpId
GetGUIThreadInfo
InsertMenuItemA
IsDialogMessageW
EnumDesktopsW
GetWindowWord
EqualRect
EnableWindow
SetWindowsHookExW
VkKeyScanExW
UpdateWindow
UnhookWindowsHookEx
SetMessageQueue
GetNextDlgTabItem
GetScrollRange
EndDialog
ReuseDDElParam
OpenIcon
DdePostAdvise
DdeQueryConvInfo
DdeSetUserHandle
GetWindowTextW
TranslateMessage
ShowWindow
MessageBoxIndirectW
MonitorFromPoint
GetWindowTextLengthA
SetPropA
DdeGetLastError
IsDialogMessage
CreateCaret
GetComboBoxInfo
GetTabbedTextExtentA
DdeConnect
DispatchMessageW
ClipCursor
EnumDisplayDevicesW
EnumChildWindows
ScrollWindow
DdeClientTransaction
GetWindowLongW
DragDetect
OffsetRect
SetWindowWord
LoadIconA
GetScrollInfo
RegisterDeviceNotificationA
GetMenuContextHelpId
RegisterClassExW
DdeKeepStringHandle
PostMessageA
ChildWindowFromPoint
GetClipboardSequenceNumber
EndTask
WaitForInputIdle
CreateWindowStationW
GetMessageA
ScrollDC
CascadeChildWindows
CreateIconFromResourceEx
GetClipboardOwner
GetCursorInfo
SetCapture
DestroyWindow
DdeGetData
GetMenuItemInfoA
LoadAcceleratorsA
DdeUninitialize
CreateMenu
GetCaretBlinkTime
SetScrollPos
GetKeyboardLayout
ReleaseDC

Sections

.text
Size: 386KB - Virtual size: 386KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

63ed387f9cb67a6be7fe933e5ed20be0

Headers

File Characteristics

Imports

advapi32

comdlg32

kernel32

user32

Sections

.text Size: 386KB - Virtual size: 386KB

.data Size: 137KB - Virtual size: 137KB

.text
Size: 386KB - Virtual size: 386KB

.data
Size: 137KB - Virtual size: 137KB